EP2234423B1 - Secure identification over communication network - Google Patents
Secure identification over communication network Download PDFInfo
- Publication number
- EP2234423B1 EP2234423B1 EP09004114.6A EP09004114A EP2234423B1 EP 2234423 B1 EP2234423 B1 EP 2234423B1 EP 09004114 A EP09004114 A EP 09004114A EP 2234423 B1 EP2234423 B1 EP 2234423B1
- Authority
- EP
- European Patent Office
- Prior art keywords
- identification
- mobile communication
- identification data
- communication network
- server
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 238000004891 communication Methods 0.000 title claims description 45
- 238000010295 mobile communication Methods 0.000 claims description 71
- 238000000034 method Methods 0.000 claims description 19
- 238000012795 verification Methods 0.000 claims description 12
- 230000004044 response Effects 0.000 claims description 9
- 230000005540 biological transmission Effects 0.000 claims description 7
- 238000013475 authorization Methods 0.000 claims description 6
- 230000007246 mechanism Effects 0.000 description 8
- 230000004913 activation Effects 0.000 description 6
- 238000005516 engineering process Methods 0.000 description 5
- 230000008901 benefit Effects 0.000 description 3
- 230000006870 function Effects 0.000 description 3
- 230000001419 dependent effect Effects 0.000 description 2
- 238000001514 detection method Methods 0.000 description 2
- 238000010586 diagram Methods 0.000 description 2
- 230000008569 process Effects 0.000 description 2
- 230000001413 cellular effect Effects 0.000 description 1
- 238000013461 design Methods 0.000 description 1
- 238000009434 installation Methods 0.000 description 1
- 230000008520 organization Effects 0.000 description 1
- 230000002093 peripheral effect Effects 0.000 description 1
- 238000012546 transfer Methods 0.000 description 1
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/31—User authentication
- G06F21/42—User authentication using separate channels for security data
- G06F21/43—User authentication using separate channels for security data wireless channels
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/30—Payment architectures, schemes or protocols characterised by the use of specific devices or networks
- G06Q20/32—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
- G06Q20/322—Aspects of commerce using mobile devices [M-devices]
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/40—Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
- G06Q20/401—Transaction verification
- G06Q20/4014—Identity check for transactions
-
- G—PHYSICS
- G07—CHECKING-DEVICES
- G07F—COIN-FREED OR LIKE APPARATUS
- G07F7/00—Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
- G07F7/08—Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
- G07F7/10—Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means together with a coded signal, e.g. in the form of personal identification information, like personal identification number [PIN] or biometric data
- G07F7/1008—Active credit-cards provided with means to personalise their use, e.g. with PIN-introduction/comparison system
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0853—Network architectures or network communication protocols for network security for authentication of entities using an additional device, e.g. smartcard, SIM or a different communication terminal
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/06—Authentication
- H04W12/068—Authentication using credential vaults, e.g. password manager applications or one time password [OTP] applications
Definitions
- the invention relates to a secure identification of an individual over a communication network. More specifically, the invention is related to a method and a system for providing identification data of an individual to a service over a communication network.
- the identification card comprises identification features, such as a photograph, a signature or biometric features, which can be compared to the corresponding features of the user.
- the identification card is issued by a trusted governmental authority and provides for a high security when verifying the identity of the user.
- US 2003/0023858 A1 describes a method for creating and validating an electronic identification document.
- the document includes identification information of a user, an electronic signature and a digital certificate and is stored in a mobile communication device of the user in encrypted form.
- To validate the document it is uploaded to an authorising machine, which decrypts the document and determines, if the document matches a non-encrypted version of the document residing in a repository.
- the authorising machine in the method described before has to dispose of a copy of the electronic identification document in order to be able to verify that the correct document of the user has been provided. Thus, the user has to be registered in the authorising machine.
- Authorising machines that do not dispose of the copy of identification document cannot be used for securely identifying the user.
- WO 2008/074342 A1 discloses a method and an arrangement for secure user authentication.
- biometric data of a user is stored and used for verifying a biometric feature of the user which is taken by means of a peripheral device that communicates with the SIM card through a Bluetooth or a ZigBee connection.
- the result of the user authentication can be communicated from the mobile phone to an application server through a telecommunication network.
- the DE 202005021262 U1 relates to a system for validating a driving license of a user.
- the driving license includes a security element which can be read by means of a detection device through a radio connection.
- the detection device may be a mobile phone which can validate the read data and can transmit the validated data to a database.
- EP 1282026 A2 discloses a user authentication method.
- a SIM card of a mobile phone a certificate of a user from an electronic identity is stored together with cryptographic data derived from information stored in the SIM card and in the electronic identity card.
- the data stored in the SIM card can be verified by a service provider using cryptographic operations.
- KR 1020020063345 A relates to a method for buying articles by using both financial and ID card and a mobile phone.
- the user moves the card close to the mobile phone and a card reader recognizes the information on the card.
- This information is sent to a shopping server together with mobile phone user information if the card user information is equal to the mobile phone user information.
- the publication M. Hassinen et al. "Utilizing national public-key infrastructure in mobile payment systems " describes a method in which a selection of a customer is sent from a mobile phone of the customer to a system of the merchant.
- the selection comprises a digital certificate stored in the SIM card of the customer's mobile phone.
- a payment order is sent from the merchant or the customer to a bank and comprises the customer's certificate and a signature of the merchant.
- the object is achieved by a method according to claim 1 and by a system according to claim 6. Embodiments of the method and the system are given in the dependent claims.
- the invention suggests a method for providing identification data of an individual to a service over a communication network.
- the method comprises providing a device to the individual, the device being connectable to the mobile communication network and registered in the communication network.
- a code is allocated to the device in the communication network and the code is transmitted to the service from another device than the device the code is allocated to.
- Identification data included in an identification means of the individual are stored in the device and the identification data from the device to the service via the communication network using the registration of the device in the communication network.
- the identification data is transmitted to the service upon a request of the service, said request being addressed to the device using the code.
- the transmission of the identification data is allowed upon successful verification of an authorisation feature input into the device.
- the invention suggests a system for providing identification data of an individual to a service over a communication network.
- the system comprises a device of the individual, the device being connectable to the communication network and registered in the communication network.
- the device comprises a code being allocated to the device in the communication network.
- the device comprises a memory unit storing a copy of identification data included in an identification means of the individual and a means for sending the identification data to the service via the communication network using the registration of the device in the communication network.
- the system further comprises a server providing the service.
- the server is adapted to receive the code, and the server being further adapted to request the device to provide the identification data, the request being addressed to the device using the code.
- the server is further adapted to request the device to provide the identification data, by means of the code received from another device than the device the code is allocated to.
- the system is arranged to send the identification data upon successful verification of an authorisation feature input into the device.
- the invention involves the idea that a copy of identification data included in an identification means of an individual is stored in a device. Thereby, the identification means and the device are coupled to each other. Moreover, the identification data are coupled to the registration of a device in the communication network. This allows for a secure and trusted identification of the individual over the communication network using the device. In particular, the registration of the device in the communication network guarantees that the identification data are provided by an authorised device. A further registration of the device or the user with the service can be dispensed with.
- the identification means is issued by a trusted authority, particularly by a governmental authority. It may be configured as an electronic identification means.
- the electronic identification means may be an electronic passport of the individual.
- electronic passport identification is provided over a communication network in a secure manner.
- the code is allocated to the device in the communication network and the identification data is transmitted to the service upon a request of the service, the request being addressed to the device using the code.
- This is one advantageous example of using the registration of the device in the communication network for transmitting the identification data to the service.
- the identification data are provided by the device of the individual and not by another device. This efficiently prevents that a false identity is provided to the service in fraudulent intent.
- the code used for addressing the request may be an MSISDN (Mobile Subscriber Integrated Services Digital Network Number) allocated to the device in the communication network.
- the communication network may be a mobile communication network, for example.
- the identification data are transferred from the electronic identification means to the device using a communication interface of the electronic identification means.
- the communication interface may be an interface for contactless communication and the identification data may transferred from the identification means to the device using contactless communication.
- the contactless communication may be based on the Near Field Communication (NFC) technology, for example, or another technology for contactless communication between electronic devices.
- NFC Near Field Communication
- the device comprises an identification application, the identification application controlling the transmission of the identification data to the service via the communication network. Since in this embodiment a dedicated application for controlling the transmission of the identification data to the service is provided, the security of the transmission can be further increased.
- a registration system initialises the identification application in response to a verification of the identification data stored in the device.
- the identification application cannot be used unless the identification data stored in the device have been verified. Thereby, the integrity of the identification data stored in the device is guaranteed. In particular, it is ensured that the identification data stored in the device belong to the individual using the device.
- the verification of the identification data may be done by a trusted registration authority operating the registration system.
- the identification application is pre-installed in the device and is activated in response to a verification of an initialisation code provided by the registration system.
- This provides for a convenient initialisation of the identification application.
- the initialisation can also be done via the communication network.
- the initialisation code may be transmitted to the device via the communication network.
- the transmission of the identification data to the service is allowed upon successful verification of an authorisation feature input into the device. This prevents a third party from using the device to identify itself using the identity of the individual owning the device.
- the authorisation feature may be a personal identification number (PIN) or a password, for example.
- the device is a SIM card connected to a mobile communication device and the communication network comprises a mobile communication network.
- SIM card refers to a smartcard being registered in the mobile communication network and providing services for identifying and/or authenticating a subscriber in the mobile communication network.
- the SIM card may comprise a SIM (Subscriber Identity Module) according to the GSM standard (GSM: Global System for Mobile Communications).
- GSM Global System for Mobile Communications
- SIM card as used herein, is to be understood as including also smartcards comprising USIM applications according to the UMTS standard (USIM: Universal Subscriber Identity Module; UMTS: Universal Mobile Telecommunications System) or other applications providing authentication and/or identification functions in connection with a mobile communication network.
- SIM cards are already allocated to a subscriber and registered in the mobile communication network. Therefore, SIM cards are suited particularly well for being utilized as devices used in the present invention.
- FIG. 1 shows a mobile communication device 101 of a mobile user.
- the mobile communication device 101 may be a cellular phone, a personal data assistant (PDA), a laptop computer or the like.
- PDA personal data assistant
- the mobile communication device 101 can be connected to a mobile communication network (PLMN: Public Land Mobile Network) 102, which may be configured according to the GSM or UMTS standard, for example.
- PLMN Public Land Mobile Network
- the mobile communication device 101 For connecting the mobile communication device 101 to the PLMN 102, the mobile communication device 101 comprises a radio interface 103.
- the radio interface 103 is coupled to a main processor 104 for controlling the operation of the mobile communication device 101.
- the mobile communication device 101 For interacting with a mobile user, the mobile communication device 101 comprises an input component 105 and a display component 106, both coupled to the main processor 104.
- Applications run on the main processor 104 and further data are stored in a memory component 107 to which the main processor 104 has access.
- the mobile communication device 101 interacts with a smartcard 108, which can be inserted into a card reader unit 109 of the mobile communication device 101.
- a smartcard 108 is usually inside the housing of the mobile communication device 101, when it is inserted into the card reader unit 109.
- the smartcard 108 is included in an add-on device, such as a dongle or an extension card, which can be connected to the mobile communication device 101 by means of a suitable interface.
- the smartcard 108 comprises a microcontroller including a microprocessor 111 for running programmes and a memory 112 for storing the corresponding program codes and further data, particularly data used by the applications run on the microprocessor 111.
- the microcontroller provides a secure environment for the execution of applications and the storage of data. Particularly, this means that unauthorised access to data and processes is prevented due to the hardware design of the microcontroller and due to cryptographic mechanisms used for managing data and running applications in the microcontroller.
- the microcontroller is integrated into a secure hardware environment provided by the smartcard 108, which is physically protected against manipulations, such as power analysis, reverse engineering etc.
- the smartcard 108 is used in connection with mobile communications via the PLMN 102 and comprises a subscriber identification module allocated to the mobile user.
- the subscriber identification module includes information and services for identifying and authenticating the mobile user to the PLMN 102 and provides functionality for accessing services of the PLMN 102.
- the subscriber identification module may be configured in accordance with the type of PLMN 102. If the PLMN 102 is a GSM or UMTS network, the subscriber identification module is a SIM according to the GSM standard or comprises a USIM application according to the UMTS standard.
- the smartcard 108 is registered under an allocated MSISDN, which is used to identify the smartcard, when establishing calls to the mobile communication device 101 or forwarding messages to the mobile communication device 101.
- SIM card the smartcard 108
- the term SIM card is to be understood as including also smartcards 108 comprising USIM applications or corresponding applications providing similar functions in connection with a PLMN 102.
- the server 113 may be configured as a web server and the service may be provided in form of a web service.
- the service provided by the server 113 may be a governmental service, such as, for example, online tax form filing or an online municipality service.
- the server 113 may also provide another service to the mobile user which requires secure identification.
- the user may access the service using his mobile communication device 101.
- the identification of the mobile user relies on an electronic identification means 114, which is issued to the mobile user by a trusted authority and which contains identification data of the mobile user. Such data may comprise one or more of the following features: the name of the user, his address, his date of birth, a photo of the mobile user and biometric features, such as, for example, the user's fingerprint.
- the identification means 114 serves as a trusted identification card.
- the identification means 114 is configured as an electronic passport, which is issued by a governmental authority.
- the electronic passport which is also referred to as ePassport, may be configured as described in the standard document 9303, part 1, volume 2, of the International Civil Aviation Organization (ICAO) , for example.
- IAO International Civil Aviation Organization
- identification data of the identification means 114 are provided to the server 113 by means of the mobile communication device 101 in a secure manner.
- identification data included in the identification means 114 are securely stored in the SIM card 108 of the mobile communication device 101 and provided to the server 113 via the PLMN 102.
- the identification data stored in the SIM card 108 are sent to the sever 113 by means of a SIM card-resident identification application, which is initialised by a registration authority after having verified the correctness of the identification data stored in the SIM card 108.
- the security architecture of the SIM card 108 prevents third parties from accessing the identification data and from making fraudulent use thereof. Since the identification data is provided to the server 113 via the PLMN 102, advantage can be taken of the security mechanisms implemented in the PLMN 102. In particular, the SIM card 108 has to be properly registered in the PLMN 102 to be able to provide the identification data to the server 113. In case the mobile user loses his SIM card 108, the mobile operator may lock the SIM card, thereby preventing third persons to use the SIM card 108 and the identification data in fraudulent intent.
- the data are copied from the identification means 114 to the SIM card 108, particularly to the memory 112 of the SIM card 108.
- the identification means 114 and the mobile communication device 101 or the SIM card 108 comprise interfaces 115, 116 for contactless communication. If the communication interface 115 is not included in the SIM card 108, the SIM card 108 and the identification means communicate with each other via the mobile communication device 101 including the interface 115 as depicted in figure 1 .
- the interfaces 115, 116 may be NFC interfaces, for example.
- the NFC technology which is in general known to a person skilled in the art, allows for contactless communication between devices within a short range of typically a few centimetres.
- the user In order to copy the identification data from the identification means 114 to the SIM card 108 the user connects the identification means 114 to the mobile communication device 101. In case the communication interfaces 115, 116 are configured as NFC interfaces, this is done by bringing the two devices 101, 114 in close proximity to each other.
- a reading application reads identification data from the identification means 114 and stores the data in the memory 112 of the SIM card 108.
- the reading application sends a request to the identification means 114 requesting the identification means 114 to provide the identification data.
- the identification means Upon receipt of the request, the identification means provides the relevant identification data to the reading application. Then, the identification data is stored in the SIM card 108.
- the reading application is provided by the SIM card 108 and is started by the user using the input component 105 of the mobile communication device 101.
- the identification means 114 may require the input of authentication data, such as, for example, a password or a PIN, to read the identification data.
- the request also contains the required authentication data. These data may be entered manually by the mobile user when starting the reading application or they may be pre-stored in the SIM card 108.
- the identification means 114 Upon receipt of the request of the reading application the identification means 114 verifies the authentication data. If the authentication data have been verified successfully, the identification means 114 answers the received request by returning the identification data to the reading application.
- the use of the data is unlocked by a registration authority.
- the registration authority verifies the identification means 114 of the mobile user and checks, whether the identification data contained in the identification means 114 are correctly stored in the SIM card 108.
- the identification application is initialised. Before it is initialised the identification application cannot be executed. Thus, the identification data stored in the SIM card 108 cannot be used unless the registration authority has verified the correctness of the identification data and has activated the identification application.
- the mobile user After the identification data have been copied to the SIM card 108, the mobile user starts a registration application of the SIM card 108 in step 201.
- the user may access the registration application by means of the input component 105 of the mobile communication device 101.
- the registration application When the registration application has been started, it generates a registration request and sends the registration request to the registration system 117 of the registration authority in step 202.
- the registration request comprises a copy of the identification data stored in the SIM card 108 and an identification information of the SIM card 108, such as, for example an ID code of the SIM card 108 or the MSISDN allocated to the SIM card 108.
- the request is sent to the registration system 117 via the PLMN 102.
- the SIM card 108 accesses the radio interface 103 of the mobile communication device 101 in a manner known to a person skilled in the art.
- the registration system 117 Upon receipt of the registration request, the registration system 117 stores the data contained in the request in a database in step 203 and initiates the mailing of a registration letter to the mobile user. If the identification data contained in the registration request comprise the postal address of the mobile user, this address is used for addressing the registration letter. However, if the postal address of the mobile user is not contained in the identification data or if the mobile user wants the registration letter to be sent to another address, an address, which has been entered manually by the mobile user, is included in the registration request.
- the registration letter includes an activation code, which is also stored in the data base in allocation to the identification data of the user and the identification information of his SIM card 108. The registration letter is mailed to the mobile user in step 204.
- the mobile user When the mobile user has received the registration letter from the registration authority, he visits a registration desk of the registration authority in step 205 in order for the identification data stored in the SIM card 108 to be verified by personnel of the registration authority in step 206.
- the personnel verifies, whether the identification means 114 belongs to the mobile user.
- the personnel may use the photograph of the user included in the identification data, the personnel may compare biometric data stored in the electronic passport with the corresponding biometric features of the mobile user or the personnel may verify a signature of the user that is also present on the electronic passport.
- the personnel at the registration desk After the personnel has successfully verified that the mobile user is the owner of the identification means 114 and after having checked that the identification data contained in the presented identification means 114 is correctly stored in the SIM card 108, the personnel at the registration desk enters the activation code included in the registration letter into the registration system 117.
- the registration system 117 When the activation code has been entered into the registration system 117, the registration system 117 initialises the identification application, which is included in the SIM card 108 of the mobile communication device 101. in step 207. Preferably, the initialisation is done via the PLMN 102.
- the identification application is pre-stored in the SIM card 108 and can be activated by means of an initialisation code.
- the initialisation code may be a secret code shared between the identification application and the registration system 117, for example. As long as the initialisation code is not provided to the identification application, it cannot be executed.
- the registration system 117 Upon entering of the activation code in the registration system, the registration system 117 sends the initialisation code to the mobile communication device 101 via the PLMN 102, and within the mobile communication device 101, the initialisation code is forwarded to the SIM card 108.
- the initialisation code is included in an initialisation message that may be addressed using the identification information of the SIM card 108, which may be the MSISDN allocated to the SIM card 108.
- the activation code is verified and the identification application is activated in response to a successful verification of the activation code.
- the communication between the registration system 117 and the SIM card 108 may be cryptographically secured in a manner known to a person skilled in the art.
- the identification application is not pre-installed in the SIM card 108 and the registration system 117 provides the identification application to the SIM card 108 for installation in step 207.
- the so-called over-the-air (OTA) mechanism which is in general known to a person skilled in the art, may be applied to install the identification application in the SIM card 108.
- the OTA technology is particularly described in the ETSI document TS 102 225 and in the 3GGP document TS 23.048 and allows for updating or changing data and/or applications in the SIM card 108 via the PLMN 102. Security against fraud is ensured by a cryptographic mechanism using cryptographic keys shared between the registration system 117 and the SIM card 108.
- the registration system 117 may encrypt the application data using a key, which is shared between the registration system 117 and the SIM card 108.
- the SIM card 108 decrypts the data using a corresponding decryption key, thereby confirming that the data originates from the registration system 117.
- the identification application When the identification application is initialised, a user authentication is required to access the identification application in the SIM card 108.
- the identification application can only be used after an authentication feature, such as, for example, a password or a PIN entered by the user has been successfully verified.
- the authentication feature may be pre-installed in the SIM card 108 and the registration authority may notify the mobile user of the authentication feature after the identification application has been initialised, In another embodiment, the identification application requests the mobile user to set an authentication feature of his choice.
- step 301 the user accesses a service provided by the server 113, which requires secure user identification.
- the user may access the service using his mobile communication device 101 or the user may access the service using another device, which is connectable to the server 113.
- the server 113 requests the mobile user to identify himself in step 302.
- the service may offer different identification mechanisms and one mechanism is the user identification by means of the identification application.
- the existing alternatives are presented to the user: Thereupon, the user selects the identification by means of the identification application.
- the MSISDN assigned to the SIM card 108 is transmitted to the server in step 303.
- the user may be requested to enter the MSISDN, when he accesses the service using another device than the mobile communication device 101. If the service is accessed using the mobile communication device, the MSISDN may be provided to the server 113 when a connection is established between the server 113 and the mobile communication device 101.
- the server 113 generates an identification request and sends the identification request to the SIM card 108 via the PLMN 102 in step 304.
- the server 113 may request specific identification data included in the identification data stored in the SIM card 108. However, it may likewise be possible that all identification data stored in the SIM card 108 are provided to the server 113 upon request.
- the request is addressed to the SIM card 108 using the MSISDN entered by the user in step 303.
- the request is received in the mobile communication device 101 and forwarded to the SIM card 108 within the mobile communication device 101.
- the identification application Upon receipt of the identification request in the SIM card 108, the identification application recognizes the identification request and requests the mobile user to enter the authentication feature in step 305. Together with the request to enter the authentication feature, the user may be informed that the service is requesting user identification. In response to the request, the user enters the authentication feature using the input component 105 of the mobile communication device 101 in step 306. The entered authentication feature is passed to the identification application and the identification application verifies the authentication feature in step 307.
- the identification application After the authentication feature has been verified successfully, the identification application generates a message including identification data of the mobile user stored in the SIM card 108.
- the message may contain all identification data or only a part thereof, when the server 113 requests a special identification feature of the mobile user.
- the message is sent to the server 113 via the PLMN 102 in step 308.
- the message is addressed using an MSISDN allocated to the server 113.
- the MSISDN may be included in the request message sent from the server to the SIM card 108 in step 304.
- the server 113 When the server 113 receives the message containing the identification data of the mobile user, the server 113 allows the mobile user to utilise the service under the communicated identity in step 310. If admission to use the service depends on the identity of the user, the server 113 checks whether the user is allowed to access the service based on the received identification data. If the check is successful, the server 113 allows the mobile user to utilise the service.
- the communication between the server 113 and the mobile communication device 101 or the SIM card 108 is cryptographically secured.
- cryptographic techniques may be used, which are in principle known to a person skilled in the art.
- the server 113 and the SIM card 108 may agree on a session key, which may be used for encrypting and decrypting the identification data and other user related data, which are transmitted from the SIM card 108 to the server 113 or vice versa.
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Theoretical Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Physics & Mathematics (AREA)
- Business, Economics & Management (AREA)
- General Physics & Mathematics (AREA)
- General Engineering & Computer Science (AREA)
- Signal Processing (AREA)
- Computer Hardware Design (AREA)
- Accounting & Taxation (AREA)
- Software Systems (AREA)
- Strategic Management (AREA)
- General Business, Economics & Management (AREA)
- Computing Systems (AREA)
- Finance (AREA)
- Telephonic Communication Services (AREA)
- Telephone Function (AREA)
- Mobile Radio Communication Systems (AREA)
Description
- The invention relates to a secure identification of an individual over a communication network. More specifically, the invention is related to a method and a system for providing identification data of an individual to a service over a communication network.
- There is a growing interest for accessing administrative or governmental services, such as, for example, tax form filing or municipality services, online via a communication network, such as, for example, the Internet. Online access to such services renders it unnecessary to apply to the service provider and allows a user for accessing the service in a convenient way by means of his home PC (personal computer), for example, or by means of a mobile communication device when travelling.
- However, services of the type described before usually require a secure identification of the user. When the user applies to the service provider or to the relevant authority, he usually has to identify himself using his identification card. The identification card comprises identification features, such as a photograph, a signature or biometric features, which can be compared to the corresponding features of the user. The identification card is issued by a trusted governmental authority and provides for a high security when verifying the identity of the user. When a service is accessed online, there is a need for a comparably secure mechanism for identifying the user of the service.
-
US 2003/0023858 A1 describes a method for creating and validating an electronic identification document. The document includes identification information of a user, an electronic signature and a digital certificate and is stored in a mobile communication device of the user in encrypted form. To validate the document, it is uploaded to an authorising machine, which decrypts the document and determines, if the document matches a non-encrypted version of the document residing in a repository. - The authorising machine in the method described before has to dispose of a copy of the electronic identification document in order to be able to verify that the correct document of the user has been provided. Thus, the user has to be registered in the authorising machine. Authorising machines that do not dispose of the copy of identification document cannot be used for securely identifying the user.
- The publication K.Hyppönen at al., "Pseudonymous Mobile Identity Architecture Based on Government-Supported PKI" describes a SIM card having a certificate of a user stored therein. For providing proof of identity the certificate can be transmitted from the SIM card to a terminal of a service provider that checks the validity of the certificate. For connecting the mobile phone and the terminal the NFC technology is used.
-
WO 2008/074342 A1 discloses a method and an arrangement for secure user authentication. In a SIM card of a mobile phone, biometric data of a user is stored and used for verifying a biometric feature of the user which is taken by means of a peripheral device that communicates with the SIM card through a Bluetooth or a ZigBee connection. The result of the user authentication can be communicated from the mobile phone to an application server through a telecommunication network. -
DE 202005021262 U1 relates to a system for validating a driving license of a user. The driving license includes a security element which can be read by means of a detection device through a radio connection. The detection device may be a mobile phone which can validate the read data and can transmit the validated data to a database. -
EP 1282026 A2 discloses a user authentication method. In a SIM card of a mobile phone, a certificate of a user from an electronic identity is stored together with cryptographic data derived from information stored in the SIM card and in the electronic identity card. The data stored in the SIM card can be verified by a service provider using cryptographic operations. -
KR 1020020063345 A - The publication M. Hassinen et al., "Utilizing national public-key infrastructure in mobile payment systems" describes a method in which a selection of a customer is sent from a mobile phone of the customer to a system of the merchant. The selection comprises a digital certificate stored in the SIM card of the customer's mobile phone. A payment order is sent from the merchant or the customer to a bank and comprises the customer's certificate and a signature of the merchant.
- It is an object of the present invention to provide a secure mechanism for identifying an individual over a communication network towards a service, which does not dispose of registration of the user. The object is achieved by a method according to claim 1 and by a system according to claim 6. Embodiments of the method and the system are given in the dependent claims.
- According to a first aspect, the invention suggests a method for providing identification data of an individual to a service over a communication network. The method comprises providing a device to the individual, the device being connectable to the mobile communication network and registered in the communication network. A code is allocated to the device in the communication network and the code is transmitted to the service from another device than the device the code is allocated to. Identification data included in an identification means of the individual are stored in the device and the identification data from the device to the service via the communication network using the registration of the device in the communication network. The identification data is transmitted to the service upon a request of the service, said request being addressed to the device using the code. The transmission of the identification data is allowed upon successful verification of an authorisation feature input into the device. According to a second aspect, the invention suggests a system for providing identification data of an individual to a service over a communication network. The system comprises a device of the individual, the device being connectable to the communication network and registered in the communication network. The device comprises a code being allocated to the device in the communication network. Further, the device comprises a memory unit storing a copy of identification data included in an identification means of the individual and a means for sending the identification data to the service via the communication network using the registration of the device in the communication network. The system further comprises a server providing the service. The server is adapted to receive the code, and the server being further adapted to request the device to provide the identification data, the request being addressed to the device using the code. The server is further adapted to request the device to provide the identification data, by means of the code received from another device than the device the code is allocated to. The system is arranged to send the identification data upon successful verification of an authorisation feature input into the device.
- The invention involves the idea that a copy of identification data included in an identification means of an individual is stored in a device. Thereby, the identification means and the device are coupled to each other. Moreover, the identification data are coupled to the registration of a device in the communication network. This allows for a secure and trusted identification of the individual over the communication network using the device. In particular, the registration of the device in the communication network guarantees that the identification data are provided by an authorised device. A further registration of the device or the user with the service can be dispensed with.
- Preferably, the identification means is issued by a trusted authority, particularly by a governmental authority. It may be configured as an electronic identification means. In particular, the electronic identification means may be an electronic passport of the individual. Thus, in this embodiment, electronic passport identification is provided over a communication network in a secure manner.
- The code is allocated to the device in the communication network and the identification data is transmitted to the service upon a request of the service, the request being addressed to the device using the code. This is one advantageous example of using the registration of the device in the communication network for transmitting the identification data to the service. In particular, it is guaranteed that the identification data are provided by the device of the individual and not by another device. This efficiently prevents that a false identity is provided to the service in fraudulent intent. For instance, the code used for addressing the request may be an MSISDN (Mobile Subscriber Integrated Services Digital Network Number) allocated to the device in the communication network. In this case the communication network may be a mobile communication network, for example.
- In one embodiment of the invention, the identification data are transferred from the electronic identification means to the device using a communication interface of the electronic identification means. This allows for a convenient transfer of the identification data to the device. In particular, the communication interface may be an interface for contactless communication and the identification data may transferred from the identification means to the device using contactless communication. The contactless communication may be based on the Near Field Communication (NFC) technology, for example, or another technology for contactless communication between electronic devices.
- In a further embodiment of the invention, the device comprises an identification application, the identification application controlling the transmission of the identification data to the service via the communication network. Since in this embodiment a dedicated application for controlling the transmission of the identification data to the service is provided, the security of the transmission can be further increased.
- In a related embodiment of the invention, a registration system initialises the identification application in response to a verification of the identification data stored in the device. Advantageously, in this embodiment, the identification application cannot be used unless the identification data stored in the device have been verified. Thereby, the integrity of the identification data stored in the device is guaranteed. In particular, it is ensured that the identification data stored in the device belong to the individual using the device. The verification of the identification data may be done by a trusted registration authority operating the registration system.
- In one embodiment of the invention, the identification application is pre-installed in the device and is activated in response to a verification of an initialisation code provided by the registration system. This provides for a convenient initialisation of the identification application. The initialisation can also be done via the communication network. Here, the initialisation code may be transmitted to the device via the communication network.
- The transmission of the identification data to the service is allowed upon successful verification of an authorisation feature input into the device. This prevents a third party from using the device to identify itself using the identity of the individual owning the device. The authorisation feature may be a personal identification number (PIN) or a password, for example.
- The device is a SIM card connected to a mobile communication device and the communication network comprises a mobile communication network.
- Here, the term SIM card refers to a smartcard being registered in the mobile communication network and providing services for identifying and/or authenticating a subscriber in the mobile communication network. The SIM card may comprise a SIM (Subscriber Identity Module) according to the GSM standard (GSM: Global System for Mobile Communications). However, the term SIM card, as used herein, is to be understood as including also smartcards comprising USIM applications according to the UMTS standard (USIM: Universal Subscriber Identity Module; UMTS: Universal Mobile Telecommunications System) or other applications providing authentication and/or identification functions in connection with a mobile communication network.
- Advantageously, such SIM cards are already allocated to a subscriber and registered in the mobile communication network. Therefore, SIM cards are suited particularly well for being utilized as devices used in the present invention.
- The aforementioned and other aspects of the invention will also be apparent from and elucidated with reference to the embodiments described hereinafter making reference to the drawings.
- Reference will be made by way of example to the accompanying drawings in which
- Fig. 1
- is a schematic depiction of a system comprising a mobile communication device providing user identification to a server over a mobile communication network,
- Fig. 2
- is a schematic diagram showing a registration of identification data of the user in the mobile communication device and
- Fig. 3
- is a schematic diagram showing the identification of the user towards the server in the system shown in
figure 1 . -
Figure 1 shows amobile communication device 101 of a mobile user. Themobile communication device 101 may be a cellular phone, a personal data assistant (PDA), a laptop computer or the like. - The
mobile communication device 101 can be connected to a mobile communication network (PLMN: Public Land Mobile Network) 102, which may be configured according to the GSM or UMTS standard, for example. For connecting themobile communication device 101 to thePLMN 102, themobile communication device 101 comprises aradio interface 103. Theradio interface 103 is coupled to amain processor 104 for controlling the operation of themobile communication device 101. For interacting with a mobile user, themobile communication device 101 comprises aninput component 105 and adisplay component 106, both coupled to themain processor 104. Applications run on themain processor 104 and further data are stored in amemory component 107 to which themain processor 104 has access. - The
mobile communication device 101 interacts with asmartcard 108, which can be inserted into acard reader unit 109 of themobile communication device 101. Although depicted outside the mobile communication device infigure 1 , thesmartcard 108 is usually inside the housing of themobile communication device 101, when it is inserted into thecard reader unit 109. As an alternative, thesmartcard 108 is included in an add-on device, such as a dongle or an extension card, which can be connected to themobile communication device 101 by means of a suitable interface. - As common for smartcards in general, the
smartcard 108 comprises a microcontroller including amicroprocessor 111 for running programmes and amemory 112 for storing the corresponding program codes and further data, particularly data used by the applications run on themicroprocessor 111. The microcontroller provides a secure environment for the execution of applications and the storage of data. Particularly, this means that unauthorised access to data and processes is prevented due to the hardware design of the microcontroller and due to cryptographic mechanisms used for managing data and running applications in the microcontroller. Moreover, the microcontroller is integrated into a secure hardware environment provided by thesmartcard 108, which is physically protected against manipulations, such as power analysis, reverse engineering etc. - The
smartcard 108 is used in connection with mobile communications via thePLMN 102 and comprises a subscriber identification module allocated to the mobile user. In particular, the subscriber identification module includes information and services for identifying and authenticating the mobile user to thePLMN 102 and provides functionality for accessing services of thePLMN 102. The subscriber identification module may be configured in accordance with the type ofPLMN 102. If thePLMN 102 is a GSM or UMTS network, the subscriber identification module is a SIM according to the GSM standard or comprises a USIM application according to the UMTS standard. In thePLMN 102, thesmartcard 108 is registered under an allocated MSISDN, which is used to identify the smartcard, when establishing calls to themobile communication device 101 or forwarding messages to themobile communication device 101. - Hereinafter, the
smartcard 108 is referred to as SIM card. However, the term SIM card, as used herein, is to be understood as including also smartcards 108 comprising USIM applications or corresponding applications providing similar functions in connection with aPLMN 102. - Via the
PLMN 102 the mobile user can securely identify himself towards an online service offered by aserver 113 connected to thePLMN 102. Theserver 113 may be configured as a web server and the service may be provided in form of a web service. In specific embodiments, the service provided by theserver 113 may be a governmental service, such as, for example, online tax form filing or an online municipality service. However, theserver 113 may also provide another service to the mobile user which requires secure identification. The user may access the service using hismobile communication device 101. However, it is likewise possible that the user accesses the service by means of another device, such as, for example, a personal computer that can be connected to the server via a network, such as, for example, the Internet. If another device is used for accessing the service, themobile communication device 101 is only used for identifying the user towards the service. - The identification of the mobile user relies on an electronic identification means 114, which is issued to the mobile user by a trusted authority and which contains identification data of the mobile user. Such data may comprise one or more of the following features: the name of the user, his address, his date of birth, a photo of the mobile user and biometric features, such as, for example, the user's fingerprint. Preferably, the identification means 114 serves as a trusted identification card. In one embodiment, the identification means 114 is configured as an electronic passport, which is issued by a governmental authority. The electronic passport, which is also referred to as ePassport, may be configured as described in the standard document 9303, part 1, volume 2, of the International Civil Aviation Organization (ICAO), for example.
- When the mobile user accesses the service provided by the
server 113, identification data of the identification means 114 are provided to theserver 113 by means of themobile communication device 101 in a secure manner. For this purpose identification data included in the identification means 114 are securely stored in theSIM card 108 of themobile communication device 101 and provided to theserver 113 via thePLMN 102. The identification data stored in theSIM card 108 are sent to the sever 113 by means of a SIM card-resident identification application, which is initialised by a registration authority after having verified the correctness of the identification data stored in theSIM card 108. - By storing the identification data in the
SIM card 108 and by providing an identification application that is likewise run in theSIM card 108, advantage can be taken of the security architecture of theSIM card 108. This means, that the security architecture of theSIM card 108 prevents third parties from accessing the identification data and from making fraudulent use thereof. Since the identification data is provided to theserver 113 via thePLMN 102, advantage can be taken of the security mechanisms implemented in thePLMN 102. In particular, theSIM card 108 has to be properly registered in thePLMN 102 to be able to provide the identification data to theserver 113. In case the mobile user loses hisSIM card 108, the mobile operator may lock the SIM card, thereby preventing third persons to use theSIM card 108 and the identification data in fraudulent intent. - For storing the identification data in the
SIM card 108, the data are copied from the identification means 114 to theSIM card 108, particularly to thememory 112 of theSIM card 108. In one embodiment, the identification means 114 and themobile communication device 101 or theSIM card 108 compriseinterfaces communication interface 115 is not included in theSIM card 108, theSIM card 108 and the identification means communicate with each other via themobile communication device 101 including theinterface 115 as depicted infigure 1 . Theinterfaces - In order to copy the identification data from the identification means 114 to the
SIM card 108 the user connects the identification means 114 to themobile communication device 101. In case the communication interfaces 115, 116 are configured as NFC interfaces, this is done by bringing the twodevices mobile communication device 101 and the identification means 114 is established, a reading application reads identification data from the identification means 114 and stores the data in thememory 112 of theSIM card 108. In order to read the data from the identification means 114, the reading application sends a request to the identification means 114 requesting the identification means 114 to provide the identification data. Upon receipt of the request, the identification means provides the relevant identification data to the reading application. Then, the identification data is stored in theSIM card 108. Preferably, the reading application is provided by theSIM card 108 and is started by the user using theinput component 105 of themobile communication device 101. - The identification means 114 may require the input of authentication data, such as, for example, a password or a PIN, to read the identification data. In this case, the request also contains the required authentication data. These data may be entered manually by the mobile user when starting the reading application or they may be pre-stored in the
SIM card 108. Upon receipt of the request of the reading application the identification means 114 verifies the authentication data. If the authentication data have been verified successfully, the identification means 114 answers the received request by returning the identification data to the reading application. - After the identification data have been stored in the
SIM card 108, the use of the data is unlocked by a registration authority. The registration authority verifies the identification means 114 of the mobile user and checks, whether the identification data contained in the identification means 114 are correctly stored in theSIM card 108. When the registration authority determines that the identification data are stored correctly in theSIM card 108, the identification application is initialised. Before it is initialised the identification application cannot be executed. Thus, the identification data stored in theSIM card 108 cannot be used unless the registration authority has verified the correctness of the identification data and has activated the identification application. - In one embodiment, the process of initialising the identification application will be described in the following referring to
figure 2 . - After the identification data have been copied to the
SIM card 108, the mobile user starts a registration application of theSIM card 108 instep 201. The user may access the registration application by means of theinput component 105 of themobile communication device 101. When the registration application has been started, it generates a registration request and sends the registration request to theregistration system 117 of the registration authority instep 202. The registration request comprises a copy of the identification data stored in theSIM card 108 and an identification information of theSIM card 108, such as, for example an ID code of theSIM card 108 or the MSISDN allocated to theSIM card 108. Preferably, the request is sent to theregistration system 117 via thePLMN 102. For this purpose, theSIM card 108 accesses theradio interface 103 of themobile communication device 101 in a manner known to a person skilled in the art. - Upon receipt of the registration request, the
registration system 117 stores the data contained in the request in a database instep 203 and initiates the mailing of a registration letter to the mobile user. If the identification data contained in the registration request comprise the postal address of the mobile user, this address is used for addressing the registration letter. However, if the postal address of the mobile user is not contained in the identification data or if the mobile user wants the registration letter to be sent to another address, an address, which has been entered manually by the mobile user, is included in the registration request. The registration letter includes an activation code, which is also stored in the data base in allocation to the identification data of the user and the identification information of hisSIM card 108. The registration letter is mailed to the mobile user instep 204. - When the mobile user has received the registration letter from the registration authority, he visits a registration desk of the registration authority in
step 205 in order for the identification data stored in theSIM card 108 to be verified by personnel of the registration authority instep 206. The personnel verifies, whether the identification means 114 belongs to the mobile user. For this purpose, the personnel may use the photograph of the user included in the identification data, the personnel may compare biometric data stored in the electronic passport with the corresponding biometric features of the mobile user or the personnel may verify a signature of the user that is also present on the electronic passport. After the personnel has successfully verified that the mobile user is the owner of the identification means 114 and after having checked that the identification data contained in the presented identification means 114 is correctly stored in theSIM card 108, the personnel at the registration desk enters the activation code included in the registration letter into theregistration system 117. - When the activation code has been entered into the
registration system 117, theregistration system 117 initialises the identification application, which is included in theSIM card 108 of themobile communication device 101. instep 207. Preferably, the initialisation is done via thePLMN 102. - In one embodiment, the identification application is pre-stored in the
SIM card 108 and can be activated by means of an initialisation code. The initialisation code may be a secret code shared between the identification application and theregistration system 117, for example. As long as the initialisation code is not provided to the identification application, it cannot be executed. Upon entering of the activation code in the registration system, theregistration system 117 sends the initialisation code to themobile communication device 101 via thePLMN 102, and within themobile communication device 101, the initialisation code is forwarded to theSIM card 108. The initialisation code is included in an initialisation message that may be addressed using the identification information of theSIM card 108, which may be the MSISDN allocated to theSIM card 108. In theSIM card 108, the activation code is verified and the identification application is activated in response to a successful verification of the activation code. The communication between theregistration system 117 and theSIM card 108 may be cryptographically secured in a manner known to a person skilled in the art. - As an alternative, the identification application is not pre-installed in the
SIM card 108 and theregistration system 117 provides the identification application to theSIM card 108 for installation instep 207. Here, the so-called over-the-air (OTA) mechanism, which is in general known to a person skilled in the art, may be applied to install the identification application in theSIM card 108. The OTA technology is particularly described in theETSI document TS 102 225 and in the 3GGP document TS 23.048 and allows for updating or changing data and/or applications in theSIM card 108 via thePLMN 102. Security against fraud is ensured by a cryptographic mechanism using cryptographic keys shared between theregistration system 117 and theSIM card 108. In particular, theregistration system 117 may encrypt the application data using a key, which is shared between theregistration system 117 and theSIM card 108. TheSIM card 108 decrypts the data using a corresponding decryption key, thereby confirming that the data originates from theregistration system 117. - When the identification application is initialised, a user authentication is required to access the identification application in the
SIM card 108. In one embodiment, the identification application can only be used after an authentication feature, such as, for example, a password or a PIN entered by the user has been successfully verified. The authentication feature may be pre-installed in theSIM card 108 and the registration authority may notify the mobile user of the authentication feature after the identification application has been initialised, In another embodiment, the identification application requests the mobile user to set an authentication feature of his choice. - The use of the identification application will now be described referring to
figure 3 . Instep 301, the user accesses a service provided by theserver 113, which requires secure user identification. As described before, the user may access the service using hismobile communication device 101 or the user may access the service using another device, which is connectable to theserver 113. When accessing the service, theserver 113 requests the mobile user to identify himself instep 302. For the purpose of identifying the user, the service may offer different identification mechanisms and one mechanism is the user identification by means of the identification application. The existing alternatives are presented to the user: Thereupon, the user selects the identification by means of the identification application. Moreover, the MSISDN assigned to theSIM card 108 is transmitted to the server instep 303. For this purpose, the user may be requested to enter the MSISDN, when he accesses the service using another device than themobile communication device 101. If the service is accessed using the mobile communication device, the MSISDN may be provided to theserver 113 when a connection is established between theserver 113 and themobile communication device 101. - Then, the
server 113 generates an identification request and sends the identification request to theSIM card 108 via thePLMN 102 instep 304. In one embodiment, theserver 113 may request specific identification data included in the identification data stored in theSIM card 108. However, it may likewise be possible that all identification data stored in theSIM card 108 are provided to theserver 113 upon request. The request is addressed to theSIM card 108 using the MSISDN entered by the user instep 303. The request is received in themobile communication device 101 and forwarded to theSIM card 108 within themobile communication device 101. - Upon receipt of the identification request in the
SIM card 108, the identification application recognizes the identification request and requests the mobile user to enter the authentication feature instep 305. Together with the request to enter the authentication feature, the user may be informed that the service is requesting user identification. In response to the request, the user enters the authentication feature using theinput component 105 of themobile communication device 101 instep 306. The entered authentication feature is passed to the identification application and the identification application verifies the authentication feature instep 307. - After the authentication feature has been verified successfully, the identification application generates a message including identification data of the mobile user stored in the
SIM card 108. The message may contain all identification data or only a part thereof, when theserver 113 requests a special identification feature of the mobile user. The message is sent to theserver 113 via thePLMN 102 instep 308. In one embodiment, the message is addressed using an MSISDN allocated to theserver 113. The MSISDN may be included in the request message sent from the server to theSIM card 108 instep 304. - When the
server 113 receives the message containing the identification data of the mobile user, theserver 113 allows the mobile user to utilise the service under the communicated identity in step 310. If admission to use the service depends on the identity of the user, theserver 113 checks whether the user is allowed to access the service based on the received identification data. If the check is successful, theserver 113 allows the mobile user to utilise the service. - Preferably, the communication between the
server 113 and themobile communication device 101 or theSIM card 108 is cryptographically secured. Here, cryptographic techniques may be used, which are in principle known to a person skilled in the art. For instance, theserver 113 and theSIM card 108 may agree on a session key, which may be used for encrypting and decrypting the identification data and other user related data, which are transmitted from theSIM card 108 to theserver 113 or vice versa. - While the invention has been illustrated and described in detail in the drawings and foregoing description, such illustration and description are to be considered illustrative or exemplary and not restrictive; the invention is not limited to the disclosed embodiments. Other variations to the disclosed embodiments can be understood and effected by those skilled in the art in practicing the claimed invention, from a study of the drawings, the disclosure, and the appended claims.
- In the claims, the word "comprising" does not exclude other elements or steps, and the indefinite article "a" or "an" does not exclude a plurality. A single processor or other unit may fulfil the functions of several items recited in the claims. The mere fact that certain measures are recited in mutually different dependent claims does not indicate that a combination of these measures cannot be used to advantage.
- Any reference signs in the claims should not be construed as limiting the scope.
Claims (8)
- A method for providing identification data of an individual to a service over a mobile communication network (102)
using a device (108) of the individual, the device (108) being connectable to the mobile communication network (102) by means of a mobile communication device (101) the device (108) is connected to, wherein the device (108) is a SIM card connected to the mobile communication device (101) registered in the communication network (102), wherein
a code is allocated to the device (108) in the communication network (102), wherein the code is transmitted to a server (113) providing the service from another device than the mobile communication device (101) connected to the device (108) the code is allocated to, the another device being used by the individual to access the service, wherein identification data included in an identification means (114) of the individual is stored in the device (108) and the identification data is transmitted from the device (108) to the server (113) via the mobile communication network (102) using the registration of the device (108) in the mobile communication network (102), and wherein the identification data is transmitted to the server upon an identification request received from the server, said identification request being addressed to the device (108) using the code, wherein the transmission of the identification data is allowed upon successful verification of an authorisation feature input into the mobile communication device (101) in response to the identification request. - The method according to claim 1, wherein the identification data are transferred from the electronic identification means (114) to the device (108) using contactless communication between the electronic identification means (114) and the device (108).
- The method according to one of the preceding claims, wherein the device (108) comprises an identification application, the identification application controlling the transmission of the identification data to the server (113) via the mobile communication network (102).
- The method according to claim 3, wherein a registration system (117) initialises the identification application in response to a verification of the identification data stored in the device (108).
- The method according to claim 3 or 4, wherein the identification application is pre-installed in the device (108) and is initialised in response to a verification of an initialisation code provided by the registration system (117).
- A system for providing identification data of an individual to a service over a mobile communication network (102), the system comprising a device (108) of the individual, wherein the device (108) is a SIM card connected to a mobile communication device (101), the device (108) being connectable to the mobile communication network (102) by means of the mobile communication device (101) and registered in the mobile communication network (102),and the device comprising a code being allocated to the device (108) in the communication network (102), and the device (108) comprising a memory unit storing a copy of identification data included in an identification means (114) of the individual; and a means for sending the identification data to the service via the mobile communication network (102) using the registration of the device (108) in the mobile communication network (102), comprising a server (113) providing the service, the system further comprising a server (113) providing the service, the server being adapted to receive the code, and the server being further adapted to request the device (108) to provide the identification data, the request being addressed to the device (108) using the code, wherein the server is further adapted to request the device (108) to provide the identification data, by means of the code received from another device than the mobile communication device (101) connected to the device (108) the code is allocated to, the another device being used by the individual to access the service, wherein the device of the individual is arranged to send the identification data, via the mobile communication network (102), upon successful verification of an authorisation feature input into the mobile communication device (101) in response to the identification request.
- The system according to claim 6, wherein the device (108) further comprises an identification application adapted to send the identification data to the server (113), the identification application being initialised by a registration system (117) in response to a verification of the identification data stored in the device (108).
- The system according to one of the claims 6 to 7, further comprising an electronic identification means (114) of the individual including an interface for transmitting identification data stored therein to the device (108).
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
EP09004114.6A EP2234423B1 (en) | 2009-03-23 | 2009-03-23 | Secure identification over communication network |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
EP09004114.6A EP2234423B1 (en) | 2009-03-23 | 2009-03-23 | Secure identification over communication network |
Publications (2)
Publication Number | Publication Date |
---|---|
EP2234423A1 EP2234423A1 (en) | 2010-09-29 |
EP2234423B1 true EP2234423B1 (en) | 2019-03-06 |
Family
ID=41137347
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
EP09004114.6A Active EP2234423B1 (en) | 2009-03-23 | 2009-03-23 | Secure identification over communication network |
Country Status (1)
Country | Link |
---|---|
EP (1) | EP2234423B1 (en) |
Families Citing this family (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
DE102011075257B4 (en) * | 2011-05-04 | 2013-11-21 | Vodafone Holding Gmbh | Answering inquiries by means of the communication terminal of a user |
US9510181B2 (en) * | 2013-10-18 | 2016-11-29 | T-Mobile Usa, Inc. | Image-based remote subscriber identity module activation |
NL2011998C2 (en) * | 2013-12-20 | 2015-06-26 | Chiptec Internat Ltd | SYSTEM, USER EQUIPMENT AND METHOD FOR AN ELECTRONIC TRANSACTION. |
Family Cites Families (7)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
ES2200598T3 (en) * | 1999-11-19 | 2004-03-01 | Swisscom Mobile Ag | PROCEDURE AND SYSTEM FOR ORDERING AND SUPPLYING DIGITAL CERTIFICATES. |
KR100601849B1 (en) * | 2001-01-27 | 2006-07-19 | 에스케이 텔레콤주식회사 | Goods purchasing method using mobile phone and IC card having personal and financial information |
US20030023858A1 (en) | 2001-07-26 | 2003-01-30 | International Business Machines Corporation | Method for secure e-passports and e-visas |
ITTO20010771A1 (en) * | 2001-08-03 | 2003-02-03 | T I S S Srl | AUTHENTICATION METHOD BY STORAGE DEVICE. |
DE102005038361A1 (en) * | 2005-08-11 | 2007-02-15 | Uwe Latsch | Official vehicle license`s e.g. driving license, physical existence checking method, involves applying automatic reader of phone at constant distances, and checking vehicle license on existence of person identifying characteristic by reader |
EP2102778B1 (en) * | 2006-12-19 | 2018-10-31 | Telecom Italia S.p.A. | Method and arrangement for secure user authentication based on a biometric data detection device |
DE102007016538A1 (en) * | 2007-04-05 | 2008-10-09 | Infineon Technologies Ag | Communication terminal, communication device, electronic card, method for a communication terminal and method for a communication device for providing a proof |
-
2009
- 2009-03-23 EP EP09004114.6A patent/EP2234423B1/en active Active
Non-Patent Citations (1)
Title |
---|
None * |
Also Published As
Publication number | Publication date |
---|---|
EP2234423A1 (en) | 2010-09-29 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US11664997B2 (en) | Authentication in ubiquitous environment | |
US12021863B2 (en) | Self-authenticating chips | |
EP2378451B1 (en) | User authentication in a tag-based service | |
US6829711B1 (en) | Personal website for electronic commerce on a smart java card with multiple security check points | |
US10158491B2 (en) | Qualified electronic signature system, method and mobile processing terminal for qualified electronic signature | |
KR101676893B1 (en) | Method for registering a mobile radio in a mobile radio network | |
EP1807966B1 (en) | Authentication method | |
US20080059797A1 (en) | Data Communication System, Agent System Server, Computer Program, and Data Communication Method | |
US20040144840A1 (en) | Method and system for registering and verifying smart card certificate for users moving between public key infrastructure domains | |
KR100548638B1 (en) | Creating and authenticating one time password using smartcard and the smartcard therefor | |
KR100968662B1 (en) | Method for registering and enabling pki functionalities | |
WO2009101549A2 (en) | Method and mobile device for registering and authenticating a user at a service provider | |
CN102483779A (en) | Method for reading attributes from an id token | |
GB2427055A (en) | Portable token device with privacy control | |
US20140052992A1 (en) | Response to Queries by Means of the Communication Terminal of a User | |
EP2234423B1 (en) | Secure identification over communication network | |
EP3994906A1 (en) | Method for securing an execution of a local application and corresponding first and second user device and system | |
US20240129139A1 (en) | User authentication using two independent security elements | |
RU92592U1 (en) | MOBILE RADIOTELEPHONE USER IDENTIFICATION SYSTEM BASED ON THE SUBSCRIBER NUMBER IN THE MOBILE RADIOTELEPHONE COMMUNICATION NETWORK | |
Zipfel et al. | Secure E-Business applications based on the European Citizen Card | |
CN117882103A (en) | Authentication system based on block chain |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PUAI | Public reference made under article 153(3) epc to a published international application that has entered the european phase |
Free format text: ORIGINAL CODE: 0009012 |
|
AK | Designated contracting states |
Kind code of ref document: A1 Designated state(s): AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HR HU IE IS IT LI LT LU LV MC MK MT NL NO PL PT RO SE SI SK TR |
|
AX | Request for extension of the european patent |
Extension state: AL BA RS |
|
17P | Request for examination filed |
Effective date: 20110328 |
|
17Q | First examination report despatched |
Effective date: 20110427 |
|
AKX | Designation fees paid |
Designated state(s): AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HR HU IE IS IT LI LT LU LV MC MK MT NL NO PL PT RO SE SI SK TR |
|
STAA | Information on the status of an ep patent application or granted ep patent |
Free format text: STATUS: EXAMINATION IS IN PROGRESS |
|
REG | Reference to a national code |
Ref country code: DE Ref legal event code: R079 Ref document number: 602009057285 Country of ref document: DE Free format text: PREVIOUS MAIN CLASS: H04W0012000000 Ipc: H04W0012060000 |
|
RIC1 | Information provided on ipc code assigned before grant |
Ipc: H04W 12/06 20090101AFI20180726BHEP Ipc: G06F 21/43 20130101ALI20180726BHEP Ipc: G06Q 20/40 20120101ALI20180726BHEP Ipc: H04L 29/06 20060101ALI20180726BHEP Ipc: G07F 7/10 20060101ALI20180726BHEP Ipc: G06Q 20/32 20120101ALI20180726BHEP |
|
GRAP | Despatch of communication of intention to grant a patent |
Free format text: ORIGINAL CODE: EPIDOSNIGR1 |
|
STAA | Information on the status of an ep patent application or granted ep patent |
Free format text: STATUS: GRANT OF PATENT IS INTENDED |
|
INTG | Intention to grant announced |
Effective date: 20180924 |
|
GRAS | Grant fee paid |
Free format text: ORIGINAL CODE: EPIDOSNIGR3 |
|
GRAA | (expected) grant |
Free format text: ORIGINAL CODE: 0009210 |
|
STAA | Information on the status of an ep patent application or granted ep patent |
Free format text: STATUS: THE PATENT HAS BEEN GRANTED |
|
AK | Designated contracting states |
Kind code of ref document: B1 Designated state(s): AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HR HU IE IS IT LI LT LU LV MC MK MT NL NO PL PT RO SE SI SK TR |
|
REG | Reference to a national code |
Ref country code: GB Ref legal event code: FG4D |
|
REG | Reference to a national code |
Ref country code: CH Ref legal event code: EP Ref country code: AT Ref legal event code: REF Ref document number: 1106250 Country of ref document: AT Kind code of ref document: T Effective date: 20190315 |
|
REG | Reference to a national code |
Ref country code: DE Ref legal event code: R096 Ref document number: 602009057285 Country of ref document: DE |
|
REG | Reference to a national code |
Ref country code: IE Ref legal event code: FG4D |
|
REG | Reference to a national code |
Ref country code: NL Ref legal event code: MP Effective date: 20190306 |
|
REG | Reference to a national code |
Ref country code: LT Ref legal event code: MG4D |
|
PG25 | Lapsed in a contracting state [announced via postgrant information from national office to epo] |
Ref country code: NO Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT Effective date: 20190606 Ref country code: FI Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT Effective date: 20190306 Ref country code: LT Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT Effective date: 20190306 Ref country code: SE Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT Effective date: 20190306 |
|
PG25 | Lapsed in a contracting state [announced via postgrant information from national office to epo] |
Ref country code: LV Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT Effective date: 20190306 Ref country code: NL Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT Effective date: 20190306 Ref country code: BG Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT Effective date: 20190606 Ref country code: GR Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT Effective date: 20190607 Ref country code: HR Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT Effective date: 20190306 |
|
REG | Reference to a national code |
Ref country code: AT Ref legal event code: MK05 Ref document number: 1106250 Country of ref document: AT Kind code of ref document: T Effective date: 20190306 |
|
PG25 | Lapsed in a contracting state [announced via postgrant information from national office to epo] |
Ref country code: EE Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT Effective date: 20190306 Ref country code: PT Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT Effective date: 20190706 Ref country code: IT Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT Effective date: 20190306 Ref country code: RO Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT Effective date: 20190306 Ref country code: SK Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT Effective date: 20190306 Ref country code: ES Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT Effective date: 20190306 Ref country code: CZ Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT Effective date: 20190306 |
|
REG | Reference to a national code |
Ref country code: CH Ref legal event code: PL |
|
PG25 | Lapsed in a contracting state [announced via postgrant information from national office to epo] |
Ref country code: LU Free format text: LAPSE BECAUSE OF NON-PAYMENT OF DUE FEES Effective date: 20190323 Ref country code: PL Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT Effective date: 20190306 |
|
REG | Reference to a national code |
Ref country code: DE Ref legal event code: R097 Ref document number: 602009057285 Country of ref document: DE |
|
REG | Reference to a national code |
Ref country code: BE Ref legal event code: MM Effective date: 20190331 |
|
PG25 | Lapsed in a contracting state [announced via postgrant information from national office to epo] |
Ref country code: AT Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT Effective date: 20190306 Ref country code: IS Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT Effective date: 20190706 |
|
PLBE | No opposition filed within time limit |
Free format text: ORIGINAL CODE: 0009261 |
|
STAA | Information on the status of an ep patent application or granted ep patent |
Free format text: STATUS: NO OPPOSITION FILED WITHIN TIME LIMIT |
|
PG25 | Lapsed in a contracting state [announced via postgrant information from national office to epo] |
Ref country code: DK Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT Effective date: 20190306 Ref country code: LI Free format text: LAPSE BECAUSE OF NON-PAYMENT OF DUE FEES Effective date: 20190331 Ref country code: IE Free format text: LAPSE BECAUSE OF NON-PAYMENT OF DUE FEES Effective date: 20190323 Ref country code: MC Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT Effective date: 20190306 Ref country code: CH Free format text: LAPSE BECAUSE OF NON-PAYMENT OF DUE FEES Effective date: 20190331 |
|
26N | No opposition filed |
Effective date: 20191209 |
|
PG25 | Lapsed in a contracting state [announced via postgrant information from national office to epo] |
Ref country code: BE Free format text: LAPSE BECAUSE OF NON-PAYMENT OF DUE FEES Effective date: 20190331 Ref country code: SI Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT Effective date: 20190306 |
|
PG25 | Lapsed in a contracting state [announced via postgrant information from national office to epo] |
Ref country code: TR Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT Effective date: 20190306 |
|
PG25 | Lapsed in a contracting state [announced via postgrant information from national office to epo] |
Ref country code: MT Free format text: LAPSE BECAUSE OF NON-PAYMENT OF DUE FEES Effective date: 20190323 |
|
PG25 | Lapsed in a contracting state [announced via postgrant information from national office to epo] |
Ref country code: CY Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT Effective date: 20190306 |
|
PG25 | Lapsed in a contracting state [announced via postgrant information from national office to epo] |
Ref country code: HU Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT; INVALID AB INITIO Effective date: 20090323 |
|
PG25 | Lapsed in a contracting state [announced via postgrant information from national office to epo] |
Ref country code: MK Free format text: LAPSE BECAUSE OF FAILURE TO SUBMIT A TRANSLATION OF THE DESCRIPTION OR TO PAY THE FEE WITHIN THE PRESCRIBED TIME-LIMIT Effective date: 20190306 |
|
PGFP | Annual fee paid to national office [announced via postgrant information from national office to epo] |
Ref country code: DE Payment date: 20240320 Year of fee payment: 16 Ref country code: GB Payment date: 20240320 Year of fee payment: 16 |
|
PGFP | Annual fee paid to national office [announced via postgrant information from national office to epo] |
Ref country code: FR Payment date: 20240322 Year of fee payment: 16 |